evil.com/index.html.
26 Hacking Exposed Web 2.0
Note that if the same origin policy were broken, then every web application would be
vulnerable to attack??”not just webmail applications. No security would exist on the web.
A lot of research has been focused on breaking the same origin policy. And once in a
while, some pretty astonishing findings result.
Cookie Security Model
HTTP is a stateless protocol, meaning that one HTTP request/response pair has no
association with any other HTTP request/response pair. At some point in the evolution
of HTTP, developers wanted to maintain some data throughout every request/response
so that they could make richer web applications. RFC 2109 created a standard whereby
every HTTP request automatically sends the same data from the user to the server in an
HTTP header called a cookie. Both the web page and server have read/write control of
this data. A typical cookie accessed through JavaScript??™s document.cookie looks like
this:
CookieName1=CookieValue1; CookieName2=CookieValue2;
Cookies were intended to store confidential information, such as authentication
credentials, so RFC 2109 defined security guidelines similar to those of the same domain
policy.
Pages:
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93